Protect your wp-config.php file
The password to your database is stored as plain, readable text in your configuration file (wp-config.php). Access to your database gives hackers control over your complete site, so to say you need to protect it is stating the obvious.
The first and most obvious step is to ensure the permissions are set correctly.
Some servers set the wrong permissions by default which allows anyone who wants to the ability to read the contents of that file.
The permission should be set using SSH or through an FTP client to 640
chmod 640 wp-config.php
Additionally you should move the wp-config.php out of the main WordPress directory.
For example if your wp-config.php is located at root level – /public_html/wp-config.php – move it down one level below – wp-config.php/public_html.
WordPress support
Wordpress Themes & plugins
WordPress Books
- Web Sites Do-It-Yourself For Dummies-
- WordPress Power Guide To Great 100 Plugins
- Build Your Own Website
- Professional Mobile Web Development with WordPress, Joomla! and Drupal (Wrox Programmer to Programmer)
- 24 FREE Top Rated WordPress Themes Reviews
- Start Your Own Blogging Business, Second Edition
- Build A Blogging Empire !
- Installez WordPress comme un pro (et commencez à bloguer en 20 minutes) (French Edition)
- How to Start and Own Your WordPress Blog ~ Made Easy
- WordPress Websites for Writers Reviews
- Entrenamiento Sobre Negocios En Internet: Curso Completo Que Te Dara Las Bases y Las Herramientas Necesarias Para Iniciar De La Mejor Forma Tu Propio Negocio En Internet (Spanish Edition)
- The Art of War: The Ancient Classic
- Sams Teach Yourself WordPress 3 in 10 Minutes (Sams Teach Yourself — Minutes)
- How To Use Google To Steal a Slice of Amazons Profits (Amazon Blog Riches)
- Getting Started in Blogging
